TY - GEN
T1 - Privacy preserving web-based email
AU - Butler, Kevin
AU - Enck, William
AU - Plasterr, Jennifer
AU - Traynor, Patrick
AU - McDaniel, Patrick
N1 - Publisher Copyright:
© Springer-Verlag Berlin Heidelberg 2006.
PY - 2006
Y1 - 2006
N2 - Recent web-based applications offer users free service in exchange for access to personal communication, such as on-line email services and instant messaging. The inspection and retention of user communication is generally intended to enable targeted marketing. However, unless specifically stated otherwise by the collecting service’s privacy policy, such records have an indefinite lifetime and may be later used or sold without restriction. In this paper, we show that it is possible to protect a user’s privacy from these risks by exploiting mutually oblivious, competing communication channels. We create virtual channels over online services (e.g., Google’s Gmail, Microsoft’s Hotmail) through which messages and cryptographic keys are delivered. The message recipient uses a shared secret to identify the shares and ultimately recover the original plaintext. In so doing, we create a wired “spread-spectrum” mechanism for protecting the privacy of web-based communication. We discuss the design and implementation of our open-source Java applet, Aquinas, and consider ways that the myriad of communication channels present on the Internet can be exploited to preserve privacy.
AB - Recent web-based applications offer users free service in exchange for access to personal communication, such as on-line email services and instant messaging. The inspection and retention of user communication is generally intended to enable targeted marketing. However, unless specifically stated otherwise by the collecting service’s privacy policy, such records have an indefinite lifetime and may be later used or sold without restriction. In this paper, we show that it is possible to protect a user’s privacy from these risks by exploiting mutually oblivious, competing communication channels. We create virtual channels over online services (e.g., Google’s Gmail, Microsoft’s Hotmail) through which messages and cryptographic keys are delivered. The message recipient uses a shared secret to identify the shares and ultimately recover the original plaintext. In so doing, we create a wired “spread-spectrum” mechanism for protecting the privacy of web-based communication. We discuss the design and implementation of our open-source Java applet, Aquinas, and consider ways that the myriad of communication channels present on the Internet can be exploited to preserve privacy.
UR - http://www.scopus.com/inward/record.url?scp=85025829583&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85025829583&partnerID=8YFLogxK
U2 - 10.1007/11961635_8
DO - 10.1007/11961635_8
M3 - Conference contribution
AN - SCOPUS:85025829583
SN - 9783540689621
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 116
EP - 131
BT - Information Systems Security - 2nd International Conference, ICISS 2006, Proceedings
A2 - Bagchi, Aditya
A2 - Atluri, Vijayalakshmi
PB - Springer Verlag
T2 - 2nd International Conference on Information Systems Security, ICISS 2006
Y2 - 19 December 2006 through 21 December 2006
ER -